$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: 0SY89YTMsiwN0EtLsgpmJJpDEPx6QQiMp7Stc0A2IPc= Subject key identifier: 31:2D:FA:3B:4C:B6:5C:EB:66:8B:0E:AC:EF:CD:8A:AE:DD:F7:7F:C7 Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 05CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 05BA Signing time: Sun 10 Aug 2025 23:17:36 +0000 Manifest this update: Sun 10 Aug 2025 23:17:35 +0000 Manifest next update: Sun 17 Aug 2025 23:17:35 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: n1j5J/VmFKbkf5JxK5SlVBRNd2EuqdF4gEEuHmWNBi8=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 23:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1485 (0x5cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Aug 10 23:17:35 2025 GMT Not After : Aug 17 23:17:35 2025 GMT Subject: CN=68992890-b383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6e:8d:6f:ab:09:77:f7:d1:66:50:e9:66:01: 43:28:51:59:39:66:37:65:bb:26:23:a2:3e:e7:9f: 81:04:7b:5c:10:03:1a:5e:e4:6e:a6:4b:30:f5:e7: 7e:29:d6:d6:a8:a1:b0:ff:31:a6:8a:ce:e7:63:f3: eb:07:f7:04:2a:eb:71:03:30:11:ad:dd:a0:4c:c8: 4d:e8:e3:08:67:e1:c9:60:75:3d:e6:54:d0:48:7c: 8d:51:11:dc:cd:dd:16:48:47:d2:ff:66:59:7e:1a: c1:b5:9c:95:15:4c:01:93:c8:89:98:a6:59:1b:04: 2a:98:a6:6b:eb:46:31:6c:3e:db:d4:df:e7:d8:be: 28:85:6b:65:35:32:99:ae:87:ba:ff:5d:86:b3:f7: e7:70:a7:6d:9d:1c:aa:c0:3d:d6:ac:89:8f:ec:c3: cc:0c:53:21:c3:46:97:1b:7f:60:a9:4e:78:af:77: a6:73:8c:ca:09:4c:3c:2f:20:d1:44:99:d5:d3:7e: 93:97:1c:9c:fd:46:a1:3c:54:47:84:5d:d3:24:bd: ec:79:ce:d7:b7:a5:e5:9c:62:db:aa:b1:26:2e:c6: 3e:7e:8a:d8:8b:fe:c7:6b:3b:9e:7f:18:5e:ff:d6: 08:20:71:6a:94:71:84:d0:fd:98:1d:06:44:5d:f1: 38:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2D:FA:3B:4C:B6:5C:EB:66:8B:0E:AC:EF:CD:8A:AE:DD:F7:7F:C7 X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:a1:cd:ac:92:25:95:1b:40:1f:9a:de:37:5d:65:4d:04:0c: cb:09:98:b9:bd:bc:e2:d5:9e:a7:e6:ca:40:8f:fe:f8:7d:9a: 41:ed:38:43:c2:56:45:68:65:ff:ac:56:8f:73:61:f2:04:75: e3:66:6d:7a:e3:52:8e:a0:3d:68:7b:70:29:aa:f3:5f:47:27: 47:3b:3e:96:fd:91:ec:bd:ad:80:5a:f3:f1:ef:7c:90:41:4c: 60:2a:7b:2e:85:17:13:9f:dd:d6:6b:f8:fa:0b:6c:92:49:32: c3:10:f4:d0:2e:9f:7c:5f:fb:12:da:87:50:dd:11:9e:41:1b: ff:5e:2b:4d:39:be:24:e1:4a:80:9a:54:2e:f2:40:25:c9:7c: 9c:20:62:a8:b3:38:dc:7d:5c:77:d4:36:ba:f6:64:b1:48:80: 34:6d:bb:ab:68:88:95:80:cb:c6:d5:7e:11:1d:5b:19:20:db: 65:ac:50:1b:49:55:48:0a:92:f8:a8:8d:e7:99:9a:f4:e9:9e: 8f:82:3d:99:26:40:86:c1:4f:57:a1:28:90:d2:f7:bf:c1:f7: b1:c9:9b:d9:a0:e0:68:81:06:6c:ac:7c:59:9e:ff:76:02:41: 4b:39:57:7e:d8:34:29:b6:e7:5b:8d:d6:60:2d:6f:d6:7a:3d: d7:98:65:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUwODEwMjMxNzM1WhcNMjUwODE3MjMxNzM1WjAYMRYwFAYD VQQDEw02ODk5Mjg5MC1iMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm26Nb6sJd/fRZlDpZgFDKFFZOWY3ZbsmI6I+55+BBHtcEAMaXuRupksw9ed+ KdbWqKGw/zGmis7nY/PrB/cEKutxAzARrd2gTMhN6OMIZ+HJYHU95lTQSHyNURHc zd0WSEfS/2ZZfhrBtZyVFUwBk8iJmKZZGwQqmKZr60YxbD7b1N/n2L4ohWtlNTKZ roe6/12Gs/fncKdtnRyqwD3WrImP7MPMDFMhw0aXG39gqU54r3emc4zKCUw8LyDR RJnV036Tlxyc/UahPFRHhF3TJL3sec7Xt6XlnGLbqrEmLsY+forYi/7Hazuefxhe /9YIIHFqlHGE0P2YHQZEXfE4DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEt+jtM tlzrZosOrO/Niq7d93/HMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuoc2skiWVG0Afmt43XWVNBAzLCZi5vbzi1Z6n5spAj/74fZpB7ThD wlZFaGX/rFaPc2HyBHXjZm1641KOoD1oe3ApqvNfRydHOz6W/ZHsva2AWvPx73yQ QUxgKnsuhRcTn93Wa/j6C2ySSTLDEPTQLp98X/sS2odQ3RGeQRv/XitNOb4k4UqA mlQu8kAlyXycIGKoszjcfVx31Da69mSxSIA0bburaIiVgMvG1X4RHVsZINtlrFAb SVVICpL4qI3nmZr06Z6Pgj2ZJkCGwU9XoSiQ0ve/wfexyZvZoOBogQZsrHxZnv92 AkFLOVd+2DQptudbjdZgLW/Wej3XmGV1 -----END CERTIFICATE-----Generated at Tue Aug 12 22:46:16 2025 by rpki-client